OPEN_NO_MASTER_KEY AUTOLOGIN UNITED
OPEN_NO_MASTER_KEY AUTOLOGIN UNITED
OPEN_NO_MASTER_KEY AUTOLOGIN UNITED
7.设置CDB的TDE主加密密钥
SYS@cdb2> ADMINISTER KEY MANAGEMENT SET KEY FORCE KEYSTORE IDENTIFIED BY welcome WITH BACKUP USING 'emp_key_backup';
使用 force keystore ,在KEYSTORE没有打开时,自动打开。
SYS@cdb2> select WRL_PARAMETER,STATUS,WALLET_TYPE,KEYSTORE_MODE from v$encryption_wallet;
WRL_PARAMETER STATUS WALLET_TYPE KEYSTORE
------------------------------ ------------------------------ -------------------- --------
/u01/app/oracle/admin/cdb2/wal OPEN AUTOLOGIN NONE
let/tde/
OPEN AUTOLOGIN UNITED
OPEN_NO_MASTER_KEY AUTOLOGIN UNITED
OPEN_NO_MASTER_KEY AUTOLOGIN UNITED
现在看到STATUS为 OPEN
8.pdb中创建加密密钥
SYS@cdb2> alter session set container=pdb1;
SYS@cdb2> select WRL_PARAMETER,STATUS,WALLET_TYPE,KEYSTORE_MODE from v$encryption_wallet;
WRL_PARAMETER STATUS WALLET_TYPE KEYSTORE
------------------------------ ------------------------------ -------------------- -------- OPEN_NO_MASTER_KEY AUTOLOGIN UNITED
状态,打开钱夹但没有设置MASTER KEY
SYS@cdb2> ADMINISTER KEY MANAGEMENT SET KEY FORCE KEYSTORE IDENTIFIED BY welcome WITH BACKUP USING 'emp_key_backup';
SYS@cdb2> select WRL_PARAMETER,STATUS,WALLET_TYPE,KEYSTORE_MODE from v$encryption_wallet;
WRL_PARAMETER STATUS WALLET_TYPE KEYSTORE
------------------------------ ------------------------------ -------------------- -------- OPEN AUTOLOGIN UNITED
带MASTER KEY 打开
9.新建立表空间,自动加密
SYS@cdb2> show parameter encr
NAME TYPE VALUE
------------------------------------ ----------- ------------------------------
encrypt_new_tablespaces string CLOUD_ONLY
SYS@cdb2 > alter system set encrypt_new_tablespaces=always;